Daily NCSC-FI news followup 2021-09-25

Onko kiinalainen puhelin vaarallinen? Näin kommentoivat viran­omainen ja tieto­turva-asian­tuntija

www.is.fi/digitoday/tietoturva/art-2000008283666.html Liettualaisten löydökset herättivät pelkoa kiinalaispuhelimiin. Asiantuntijoiden mukaan kyse ei ole yhteen maahan liittyvästä ongelmasta. Kuluttajan asema on kuitenkin vaikea.

VMware vCenter Server Vulnerability CVE-2021-22005 Under Active Exploit

us-cert.cisa.gov/ncas/current-activity/2021/09/24/vmware-vcenter-server-vulnerability-cve-2021-22005-under-active On September 21, 2021, VMware disclosed that its vCenter Server is affected by an arbitrary file upload vulnerabilityCVE-2021-22005in the Analytics service. A malicious cyber actor with network access to port 443 can exploit this vulnerability to execute code on vCenter Server.

FBI decision to withhold Kaseya ransomware decryption keys stirs debate

www.zdnet.com/article/fbi-decision-to-withhold-kaseya-ransomware-decryption-keys-stirs-debate/ Many security experts defended the FBI’s decision to leave Kaseya victims struggling with ransomware infections for weeks.

United Health Centers ransomware attack claimed by Vice Society

www.bleepingcomputer.com/news/security/united-health-centers-ransomware-attack-claimed-by-vice-society/ California-based United Health Centers suffered a ransomware attack that reportedly disrupted all of their locations and resulted in patient data theft.

Russian missile fuel maker targeted with recent Office zero-day

therecord.media/russian-missile-fuel-maker-targeted-with-recent-office-zero-day/ Russian organizations, including a major defense contractor, have been targeted in a suspected cyber-espionage operation that is abusing a recently disclosed Office zero-day.

Large-Scale Phishing-as-a-Service Operation Exposed

threatpost.com/phishing-as-a-service-exposed/174932/ Discovery of BulletProofLinkwhich provides phishing kits, email templates, hosting and other toolssheds light on how wannabe cybercriminals can get into the business.

A New Bug in Microsoft Windows Could Let Hackers Easily Install a Rootkit

thehackernews.com/2021/09/a-new-bug-in-microsoft-windows-could.html Security researchers have disclosed an unpatched weakness in Microsoft Windows Platform Binary Table (WPBT) affecting all Windows-based devices since Windows 8 that could be potentially exploited to install a rootkit and compromise the integrity of devices.

Bitcoin.org hackers steal $17,000 in ‘double your cash’ scam

www.bleepingcomputer.com/news/security/bitcoinorg-hackers-steal-17-000-in-double-your-cash-scam/ This week, threat actors hijacked Bitcoin.org, the authentic website of the Bitcoin project, and altered its parts to push a cryptocurrency giveaway scam that unfortunately some users fell for.. Although the hack lasted for less than a day, hackers seem to have walked away with a little over $17,000.

Näin EU:n satelliitti­paikannus Galileo tulee käyttöön Suomessa

www.is.fi/digitoday/art-2000008282315.html Galileon viranomaisille tarkoitettu palvelu on määrä ottaa Suomessa käyttöön kolmessa vuodessa.

You might be interested in …

[NCSC-FI News] macOS Malware Is More Reality Than Myth: Popular Threats and Challenges in Analysis

Understanding the threat landscape and how threats behave is the first step CrowdStrike researchers take toward strengthening customer protection. They based the following threat landscape analysis on internal and open source data, which revealed that in 2021 the most commonly encountered macOS malware types were ransomware (43%), backdoors (35%) and trojans (17%) Each category is […]

Read More

Daily NCSC-FI news followup 2019-09-29

German Cops Raid Cyberbunker 2.0, Arrest 7 in Child Porn, Dark Web Market Sting krebsonsecurity.com/2019/09/german-cops-raid-cyberbunker-2-0-arrest-7-in-child-porn-dark-web-market-sting/ German authorities said Friday theyd arrested seven people and were investigating six more in connection with the raid of a Dark Web hosting operation that allegedly supported multiple child porn, cybercrime and drug markets with hundreds of servers buried inside […]

Read More

Daily NCSC-FI news followup 2021-12-08

Huijauspuhelut tulevat yhä useammin väärennetystä numerosta Näin Elisa ja Traficom kitkevät huijauksia www.tivi.fi/uutiset/tv/31f2dc55-c825-4b0a-bee3-c17fd2899325 Liikenne- ja viestintävirasto Traficom valmistelee keinoja estää huijauspuheluissa yleistynyt soittajan numeron väärentäminen. Keinoja etsitään yhdessä Suomessa toimivien teleoperaattoreiden kanssa. Tavoite on kansainvälisten rikollisten toiminnan vaikeuttaminen ja estäminen. New German government coalition promises not to buy exploits therecord.media/new-german-government-coalition-promises-not-to-buy-exploits/ The three political parties set […]

Read More

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.